This section describes the TLS Security Settings window features and controls.
Item | Description |
---|---|
Protocol | Protocols that is allowed to be used in the communication path. The following protocols are supported:
|
Cipher Suites | Cipher Suites that are allowed to be used in the communication path. The following cipher suites are supported:
|
Minimum Key Length (Key Exchange) | Sets the minimum key length allowed for key exchange during the communications. The minimum key length supported by the key exchange algorithm set on the TLS Security Setting dialog box in the Tool Panel dialog box is applied when a certificate with RSA public key is set during the communications between the management client and the SVP. When the following cipher suites are valid, and when a server certificate, root certificate, or client certificate with an RSA public key is uploaded to the SVP, the key length of the RSA public key of the certificate must be longer than the key length selected on the TLS Security Setting dialog box in the Tool Panel dialog box.
When the SVP communicates with a Syslog server, key management server, external authentication and authorization server, or Hitachi Command Suite server, the key length of the key exchange key set on the server must satisfy the following:
The supported key exchange algorithms have a minimum key lengths. |
Renegotiation | Sets whether to allow (Yes) or disallow (No (Recommended)) renegotiation. |